AGL 40.00 No Change ▼ 0.00 (0%)
AIRLINK 129.06 Decreased By ▼ -0.47 (-0.36%)
BOP 6.75 Increased By ▲ 0.07 (1.05%)
CNERGY 4.49 Decreased By ▼ -0.14 (-3.02%)
DCL 8.55 Decreased By ▼ -0.39 (-4.36%)
DFML 40.82 Decreased By ▼ -0.87 (-2.09%)
DGKC 80.96 Decreased By ▼ -2.81 (-3.35%)
FCCL 32.77 No Change ▼ 0.00 (0%)
FFBL 74.43 Decreased By ▼ -1.04 (-1.38%)
FFL 11.74 Increased By ▲ 0.27 (2.35%)
HUBC 109.58 Decreased By ▼ -0.97 (-0.88%)
HUMNL 13.75 Decreased By ▼ -0.81 (-5.56%)
KEL 5.31 Decreased By ▼ -0.08 (-1.48%)
KOSM 7.72 Decreased By ▼ -0.68 (-8.1%)
MLCF 38.60 Decreased By ▼ -1.19 (-2.99%)
NBP 63.51 Increased By ▲ 3.22 (5.34%)
OGDC 194.69 Decreased By ▼ -4.97 (-2.49%)
PAEL 25.71 Decreased By ▼ -0.94 (-3.53%)
PIBTL 7.39 Decreased By ▼ -0.27 (-3.52%)
PPL 155.45 Decreased By ▼ -2.47 (-1.56%)
PRL 25.79 Decreased By ▼ -0.94 (-3.52%)
PTC 17.50 Decreased By ▼ -0.96 (-5.2%)
SEARL 78.65 Decreased By ▼ -3.79 (-4.6%)
TELE 7.86 Decreased By ▼ -0.45 (-5.42%)
TOMCL 33.73 Decreased By ▼ -0.78 (-2.26%)
TPLP 8.40 Decreased By ▼ -0.66 (-7.28%)
TREET 16.27 Decreased By ▼ -1.20 (-6.87%)
TRG 58.22 Decreased By ▼ -3.10 (-5.06%)
UNITY 27.49 Increased By ▲ 0.06 (0.22%)
WTL 1.39 Increased By ▲ 0.01 (0.72%)
BR100 10,445 Increased By 38.5 (0.37%)
BR30 31,189 Decreased By -523.9 (-1.65%)
KSE100 97,798 Increased By 469.8 (0.48%)
KSE30 30,481 Increased By 288.3 (0.95%)

Amid online privacy concerns, Europeans can breathe easy. A citadel of pro-consumer regulations, the European Union (EU) is now on its way to harness the tech titans, who happen to be in a bit of a scramble these days. Indeed, the EU’s implementation last week of data protection rules under the ‘General Data Protection Regulation’ (GDPR) directive has given rest of the world, and Pakistan, a template to follow.

The EU bosses are rightly treating ‘data protection’ as a fundamental right. They intend to form a ‘digital single market’ by enforcing GDPR on all companies – both tech and non-tech – no matter where they are based, so long as they are handling user data or tracking user behavior within EU. Companies are claiming compliance burden and face potential penalties; but GDPR clearly has the users’ back.

For instance, a personal data breach would now necessitate that the user be informed of the same if the user’s well being is put in danger.

User can now ask a company to erase their data in case it erroneously represents them. Besides this so-called ‘right to be forgotten’, users can also demand their data back or ask for that data to be transferred to another company.
Perhaps, the most significant GDPR provision requires companies to take users’ informed consent before handling their personal data for internal and/or external use. It notes, “…silence or inactivity will no longer be considered as valid consent as a clear affirmative action to express the consent is required…”

Taking user consent will ensure that companies do away with legalese one finds in long-winding terms & conditions; instead, they will cut to the chase: ask for permission in clear and concise manner.

This ‘opt-in’ regulation is where tech giants like Facebook and Google might stumble. On these platforms, it’s ‘all or nothing’ – that is, users have to agree/check all the boxes to be able to use their platform.

Companies are also required to tell their users as to what purposes their data will be processed and with whom it will be shared. This will likely have negative impact on digital advertising and mass marketing, with a positive spillover on conventional advertising media.

In Pakistan, data protection is a major concern. Existing laws – such as the Prevention of Electronic Crimes Act, 2016 – don’t go too far. The recent, belated release of the Digital Pakistan Policy leaves it for the next government to enact the envisaged data protection and privacy laws.

Meanwhile, episodes like the Careem data breach earlier this year threaten privacy of individuals partaking in online economy.

In addition, it is feared that users’ personal data is sold to third parties by unscrupulous individuals at telecom and broadband operators, thus violating user privacy and fueling spam.

Surely, Pakistan doesn’t enjoy the kind of economic muscle and policing capacity that the EU has. But GDPR is common-sense regulation which can be implemented through a dedicated, serious-minded data protection agency. If the EU’s regulations catch up with other developed economies, it may force tech firms to follow the same data-protection protocols in developing countries.

But that likelihood is perhaps years away. The onus is now on the next government to ensure safety & security of online users.

Copyright Business Recorder, 2018

Comments

Comments are closed.